USG60W reboot now and then after upgrade to 4.30

SeaHawk
SeaHawk Posts: 6  Freshman Member
First Comment Third Anniversary
edited April 2021 in Security

Hi All,

We have a USG60W and after upgrade to 4.30 (AAKZ.0) we now and then (x times a day) got our firewall rebooted. Sometimes it takes a few minutes before its online again and sometimes it takes more than 5 minutes.
I try to watch logs but can't find anything strange in them, other than that the firewall has booted up again :/ .

Not any high values för system resources.

Maybe try to revert to 4.25 or is there maybe something we can do.

Least to say it's a bit annoying and the business is not too happy :s

Maybe some log that I don't know about that could tell us more?

With Kind Regards
/Christian





«1345

Comments

  • Zyxel_Charlie
    Zyxel_Charlie Posts: 1,034  Zyxel Employee
    50 Answers 500 Comments Friend Collector Fourth Anniversary
    Hello Christian,
    For analyze this case, please help collect the information as below list
    1. I need you collect disklog and send to me first.
    On tera term, please Go to File>Log>Click Save>Enter the command "Router# show software-watchdog-timer log" and private message me the disklog file.



    2. Moreover, please enable debug level 8 to collect the log information until the issue occur again.
    Do the same steps as above, however, enter the command as below.
    Enter this command:

    Router> debug kernel console-level 8


    Also, if you gather completely, please private message this log file to me.

    Charlie

  • PeterUK
    PeterUK Posts: 3,461  Guru Member
    100 Answers 2500 Comments Friend Collector Seventh Anniversary

    I might be having the same issue but with my Zywall it rebooted without warning I think it might be to do with address objects with FQDN so I have deleted them and rebooted to see how it goes.

    Here my show software-watchdog-timer log


  • parnassus
    parnassus Posts: 13  Freshman Member
    First Comment Friend Collector
    @PeterU: ...your ZyXEL Firewall is exactly a ZyXEL ZyWALL 110 (nor a USG110 neither a USG60W as the OP reported in this thread)...and, looking at the log you provided, it looks like your ZyWALL 110 is - still (!) - runnning on a old Firmware Version 4.15(AAAA.2) built on March 2016!

    Firmware versions for ZyXEL ZyWALL 110 here.

    Have you considered to update it to latest Firmware Version available which is 4.30(AAAA.0) released on December 2017 to see if your issue will repeat?
  • PeterUK
    PeterUK Posts: 3,461  Guru Member
    100 Answers 2500 Comments Friend Collector Seventh Anniversary
    edited December 2017

    Its running 4.30 so the watchdog-timer log missed the unexpected reboot for the logs to show any thing that I'm running 4.30....

  • Zyxel_Charlie
    Zyxel_Charlie Posts: 1,034  Zyxel Employee
    50 Answers 500 Comments Friend Collector Fourth Anniversary
    Hello PeterUK,
    Thanks for your disklog. 
    Moreover, to analyze this case, 
    please enable debug level 8 to collect the log information until the issue occur again.
    Do the same steps as above, however, enter the command as below.
    Enter this command:

    Router> debug kernel console-level 8


    Also, if you gather completely, please private message this log file to me.

    Charlie

  • PeterUK
    PeterUK Posts: 3,461  Guru Member
    100 Answers 2500 Comments Friend Collector Seventh Anniversary

    Is there a way to clear old watchdog-timer logs? Or will it overwrite old logs?

    thanks 

  • SeaHawk
    SeaHawk Posts: 6  Freshman Member
    First Comment Third Anniversary
    Hi Tnx for answer. I will get a serial cable and get the information.

    I can see in the GUI that exist some "Console" application. Understod that this demands Java to run. What browser do you recommend for that. (Windows environment).

    But for above log I will use Tera Term and the serial port.

    /Christian
  • SeaHawk
    SeaHawk Posts: 6  Freshman Member
    First Comment Third Anniversary
    Hi Again,

    I think my router understand that I post a message here, due to it take some time until it rebooted again. I had an empty log before the last reboot and set "debug kernel console-level 8" but I still got an empty log even after an unexpected reboot?

     Is this common, or do I do something wrong?

    All best
    /Christian
  • PeterUK
    PeterUK Posts: 3,461  Guru Member
    100 Answers 2500 Comments Friend Collector Seventh Anniversary

    I can't get the GUI "Console" to work with Java but you can SSH to the USG using PuTTY.

    https://www.chiark.greenend.org.uk/~sgtatham/putty/

  • SeaHawk
    SeaHawk Posts: 6  Freshman Member
    First Comment Third Anniversary
    Tnx,

    Yes, I found that out  =) it's work well with both SSH and Telnet and Putty and TeraTerm.

    But still is the log empty  :/

    Have now replaced the router with an old XXXXX (another brand) and will take the router home to be able to dig deeper into it.

    /Christian

Security Highlight